$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: L1b8hR3eQS691HOo6jBrGTNAqZLvbqHvUJpwWopOsQ0= Subject key identifier: 3E:43:3B:1B:55:0C:FC:21:01:28:7B:3C:DF:C1:54:9D:38:EA:11:71 Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1DFE Signing time: Mon 28 Apr 2025 16:12:49 +0000 Manifest this update: Mon 28 Apr 2025 16:12:48 +0000 Manifest next update: Mon 05 May 2025 16:12:48 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: 3/dwUJMelQIYFXJL8iDBD0iQiNrvdaRJET+tWQhMbYQ=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7708 (0x1e1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Apr 28 16:12:48 2025 GMT Not After : May 5 16:12:48 2025 GMT Subject: CN=680fa901-35b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:ee:05:46:6a:a0:27:fd:5d:47:25:dd:0f: d6:66:30:ce:4c:bf:ae:9d:0d:e6:c8:e0:fb:2e:a3: a8:45:04:05:7a:fa:fe:5b:d2:4e:b1:41:db:79:18: c7:76:1c:27:8f:37:3e:1b:4f:0e:da:94:81:ae:25: 8a:73:b5:ba:da:05:2d:d5:8a:a9:e3:99:0a:73:1b: c0:35:2f:65:49:e2:5d:4b:94:da:6e:03:1c:f2:13: ed:e4:5f:58:1c:16:09:2c:9e:4e:79:b5:78:b5:82: fc:6d:40:83:51:3f:67:be:30:33:21:10:ad:99:10: 55:8c:da:50:45:78:dd:07:9a:1e:96:52:90:6b:5b: 25:de:a1:71:8b:97:bc:37:3f:bb:62:75:68:60:4d: f1:50:b7:af:b4:17:b4:9e:9e:de:43:f1:d5:c5:42: bc:b1:07:c2:37:2d:d0:00:20:ea:20:53:8b:6e:ea: 63:ee:ee:61:e6:43:0e:cf:e7:1e:13:db:12:6d:e9: 6a:fe:51:a3:10:b0:8c:c5:6d:77:58:a6:81:44:22: 2a:4a:a1:fb:6f:39:b7:72:bf:60:47:97:7c:4f:5a: 9c:85:f4:dd:db:db:54:d3:43:f3:09:25:d8:91:f2: c8:48:b8:73:5d:6d:5c:3f:db:31:10:50:72:a0:7b: c3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:43:3B:1B:55:0C:FC:21:01:28:7B:3C:DF:C1:54:9D:38:EA:11:71 X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:27:9c:2c:bd:2e:44:b9:0e:5c:03:c9:a0:3f:2c:42:b1:7f: 37:34:6d:95:8d:bf:36:76:bf:39:51:f4:dd:5d:ab:45:4c:c7: e0:0e:8e:5f:af:1c:2d:ff:b9:1c:d0:74:12:9d:7f:e8:84:9a: 47:68:9b:e2:49:b0:ab:53:82:a3:be:7a:6e:51:34:f7:97:34: 3d:17:69:57:69:d7:72:05:7f:55:75:44:aa:8a:13:18:68:42: d6:52:6e:2d:eb:cb:65:d1:c2:05:ba:d2:49:ff:bf:e8:f0:ef: dc:67:de:02:73:5d:c2:73:f1:af:f9:c6:3a:8b:aa:a3:0b:7a: 7e:50:3c:8e:50:27:67:35:e5:1e:38:c6:4d:d8:43:54:3b:2b: 78:c2:7f:97:6a:19:8f:9e:85:4e:da:34:fb:03:95:6d:e3:68: 92:ea:bb:88:d4:fa:d0:69:3d:99:2a:bd:66:d8:be:0f:da:bc: 12:53:e7:6e:d3:7b:9b:94:85:01:73:b8:50:a7:b6:26:7a:67: 86:24:fb:dd:b3:03:f2:a7:47:a4:85:25:30:26:81:e5:f0:36: 66:ac:4b:26:7f:69:71:d5:a8:45:d4:11:13:e4:5d:d3:f6:62: eb:39:30:bb:68:0f:21:6b:13:0e:b4:5e:3b:dd:b4:6d:31:95: af:29:45:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwNDI4MTYxMjQ4WhcNMjUwNTA1MTYxMjQ4WjAYMRYwFAYD VQQDEw02ODBmYTkwMS0zNWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7LuBUZqoCf9XUcl3Q/WZjDOTL+unQ3myOD7LqOoRQQFevr+W9JOsUHbeRjH dhwnjzc+G08O2pSBriWKc7W62gUt1Yqp45kKcxvANS9lSeJdS5TabgMc8hPt5F9Y HBYJLJ5OebV4tYL8bUCDUT9nvjAzIRCtmRBVjNpQRXjdB5oellKQa1sl3qFxi5e8 Nz+7YnVoYE3xULevtBe0np7eQ/HVxUK8sQfCNy3QACDqIFOLbupj7u5h5kMOz+ce E9sSbelq/lGjELCMxW13WKaBRCIqSqH7bzm3cr9gR5d8T1qchfTd29tU00PzCSXY kfLISLhzXW1cP9sxEFByoHvDtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5DOxtV DPwhASh7PN/BVJ046hFxMB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWJ5wsvS5EuQ5cA8mgPyxCsX83NG2Vjb82dr85UfTdXatFTMfgDo5f rxwt/7kc0HQSnX/ohJpHaJviSbCrU4KjvnpuUTT3lzQ9F2lXaddyBX9VdUSqihMY aELWUm4t68tl0cIFutJJ/7/o8O/cZ94Cc13Cc/Gv+cY6i6qjC3p+UDyOUCdnNeUe OMZN2ENUOyt4wn+XahmPnoVO2jT7A5Vt42iS6ruI1PrQaT2ZKr1m2L4P2rwSU+du 03ublIUBc7hQp7YmemeGJPvdswPyp0ekhSUwJoHl8DZmrEsmf2lx1ahF1BET5F3T 9mLrOTC7aA8haxMOtF473bRtMZWvKUVy -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:50 2025 by rpki-client on console.sobornost.net